Start / Cloud Security Podcast / Continuous monitoring for controls vulnerabilities daniel miessler

CONTINUOUS MONITORING FOR CONTROLS & VULNERABILITIES - DANIEL MIESSLER

49 min • 18 oktober 2020

In this episode of the Virtual Coffee with Ashish edition, we spoke with Daniel Miessler

Host: Ashish Rajan - Twitter @hashishrajan
Guest: Daniel Miessler - Linkedin @danielmiessler

In this episode, Daniel & Ashish spoke about

What was your path into CyberSecurity
Continuous Monitoring(CM) or Continuous Auditing - is that the same thing for you?
CI/CD, one would assume CM is obvious, or is CM more of a mature organisation thing?
At what point, should an organisation consider Continuous Monitoring? Do smaller organisations need to think about it as well?
What is BugBounty?
How do we find more about BugBounty resources for continuous monitoring?
Are you using Python for automation?
How to manage risk around Bounty program?
What suggestions do you have for continuous monitoring in a multi cloud environment?
Have you added any machine learning algorithms to your methodology or KO moves?
How can one start with automation when looking for vulnerability Continuously
How do you scale inventory for resources?
Can you use it to find fake phishing websites?
Custom code vs product for continuous monitoring?
Is there alert fatigue in continuous monitoring?
Why is it important to do continuous monitoring?
Does everyone in tech or in general need to have a personal brand? Tips for Personal Branding for audience that enjoys blogging or podcasting?

ShowNotes and Episode Transcript on www.cloudsecuritypodcast.tv

Twitter - @kaizenteq @hashishrajan

If you want to watch videos of this and previous episodes:

- Twitch Channel: https://lnkd.in/gxhFrqw

- Youtube Channel: https://lnkd.in/gUHqSai

Senaste avsnitt

CONTINUOUS MONITORING FOR CONTROLS & VULNERABILITIES - DANIEL MIESSLER

Senaste avsnitt

Guide to Hybrid Cloud & Bare Metal Secret Management

"Escape-Proof" Cloud: How Block built an Automated Approach to Egress Control

Prioritizing Cloud Security: How to Decide What to Protect First

Migrating from “Tick Box" Compliance to Automating GRC in a Multi-Cloud World

Using AI Agents to Solve Cloud Vulnerability Overload

Adapting to New Threats, Copilot Risks & The Future of Data (Feat. Matthew Radolec, Varonis)

Securing AI: Threat Modeling & Detection

CYBERSECURITY for AI: The New Threat Landscape & How Do We Secure It?

Cloud Security Evolved: From CNAPP to AI Threats

RSA Conference 2025 Recap: Top Themes, Actionable Insights & Future Trends

Mindset: Modern SOC Strategies for Cloud & Kubernetes (Ft Sergej Epp. Ex-Deutsche Bank)

Scaling Container Security Without Slowing Developers

How Attackers Stay Hidden Inside Your Azure Cloud

How Confluent Migrated Kubernetes Networking Across AWS, Azure & GCP

The New Future of Cloud Security: Vendor Lock-In, Runtime, and SOC Readiness

Detection Engineering with Google Cloud

CNAPPs & CSPMs don’t tell the full cloud security story

Securing AI Applications in the Cloud

Realities of Cloud Networking in AWS

Cloud Incident Response in Microsoft Azure

AWS Multi-Account Security: What Netflix Learned

Cloud Security Detection & Response Strategies That Actually Work

CISO Challenges Across Industries

Why Solving the Data Problem is Key to Cloud Security?

The economics of cybersecurity and trends

The Truth About CNAPP and Kubernetes Security

Cybersecurity Isn’t Crowded: Security Engineering and the 5,000 Vendor Problem

Centralized VPC Endpoints - Why It Works for AWS Networking

What is CADR?

Building Platforms in Regulated Industries

Dynamic Permission Boundaries: A New Approach to Cloud Security

Building a Resilient Cloud Security Program after Merger and Acquisition

Building Data Perimeter in Cloud in 2024

Navigating NIST CSF 2.0: Guide to Frameworks and Governance

Building a SOC Team in 2024 - Automation & AI

Cloud Identity Lifecycle Management Explained!

Traditional PAM vs Cloud CPAM for a cloud first world

The Role of Cloud Security Research in 2024

Edge Security is the Key to Cloud Protection

Is your CI/CD Pipeline your Biggest Security Risk?

State of Cloud Security - Practitioner Edition

BlackHat USA 2024 Highlights and Recap

Building an Incident Response Team for High-Growth Companies

State of Cloud Security 2024 - Leadership Edition

Cloud Native Strategies from a FinTech CISO

Fixing Cloud Security with AWS Lambda

What is confidential computing? Explained for 2024

The Evolution of Infrastructure as Code so far - 2024 Edition

What is AI-SPM?

Creating Effective Sigma Rules with AI

What is the future of security operations with AI in 2024?

Cloud Native Security Strategies for 2024

Real-World Cloud Security Challenges and Solutions Explained for 2024

Why Least Privilege Matters in Cloud Security?

How is Kubernetes Network Security Evolving?

The Future of Software Development with AI

The role of Real Time Defense in Cloud Security

CISO's guide to embracing risk in business

Why Email Breaches Still Happen?

Essential Strategies to master Incident Response in Cloud

From Code Suggestions to Security

Cloud Security Operations for Modern Threats

Understanding Threat Modeling in Cloud

Balancing Efficiency & Security: AI’s Transformation of Legal Data Analysis

Sidecar Container Vulnerability in Kubernetes explained

Role of application security posture management in cybersecurity

Cybersecurity Best Practices and Password Security in Cloud and AI

Multicloud strategy for AWS and GCP

AI's Role in Security Efficiency - Kubernetes Edition

Build an Effective AWS Cloud Security Program in 2024

Offensive Cloud Security Program for 2024

Understand Your Cloud Security Landscape to cut through the noise!

Kubernetes Security Trends 2024 | Software Supply Chain Security, Zero Trust and AI

Kubernetes Network Security for Multi Tenancy

AWS reInvent 2023 - Security highlights and announcements

eBPF - Kubernetes Network Security without the Blind Sides!

Attack Path Analysis for Better Kubernetes Security

Secure your SaaS applications like this!